CVE-2022-4304— Timing Oracle in RSA Decryption
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2022-4304
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Timing Oracle in RSA Decryption
Source: NVD (National Vulnerability Database)
Vulnerability Description
A timing based side channel exists in the OpenSSL RSA Decryption implementation which could be sufficient to recover a plaintext across a network in a Bleichenbacher style attack. To achieve a successful decryption an attacker would have to be able to send a very large number of trial messages for decryption. The vulnerability affects all RSA padding modes: PKCS#1 v1.5, RSA-OEAP and RSASVE. For example, in a TLS connection, RSA is commonly used by a client to send an encrypted pre-master secret to the server. An attacker that had observed a genuine connection between a client and a server could use this flaw to send trial messages to the server and record the time taken to process them. After a sufficiently large number of messages the attacker could recover the pre-master secret used for the original connection and thus be able to decrypt the application data sent over that connection.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
OpenSSL 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
OpenSSL是OpenSSL团队的一个开源的能够实现安全套接层(SSLv2/v3)和安全传输层(TLSv1)协议的通用加密库。该产品支持多种加密算法,包括对称密码、哈希算法、安全散列算法等。 Open SSL存在安全漏洞,该漏洞源于在RSA解密实现中存在基于时间的侧信道,这可以在Bleichenbacher式攻击中跨网络恢复密文。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
II. Public POCs for CVE-2022-4304
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | None | https://github.com/Trinadh465/Openssl-1.1.1g_CVE-2022-4304 | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2022-4304
请登录查看更多情报信息。
- https://www.openssl.org/news/secadv/20230207.txtvendor-advisory
- https://nvd.nist.gov/vuln/detail/CVE-2022-4304
Same Patch Batch · OpenSSL · 2023-02-08 · 7 CVEs total
| CVE-2022-4450 | Double free after calling PEM_read_bio_ex | |
| CVE-2023-0215 | Use-after-free following BIO_new_NDEF | |
| CVE-2023-0216 | Invalid pointer dereference in d2i_PKCS7 functions | |
| CVE-2023-0217 | NULL dereference validating DSA public key | |
| CVE-2023-0286 | X.400 address type confusion in X.509 GeneralName | |
| CVE-2023-0401 | NULL dereference during PKCS7 data verification |
IV. Related Vulnerabilities
Same product: OpenSSL
- CVE-2026-31790
Incorrect Failure Handling in RSA KEM RSASVE Encapsulation - CVE-2026-31789
Heap Buffer Overflow in Hexadecimal Conversion - CVE-2026-28390
Possible NULL Dereference When Processing CMS KeyTransportRe - CVE-2026-28389
Possible NULL Dereference When Processing CMS KeyAgreeRecipi - CVE-2026-28388
NULL Pointer Dereference When Processing a Delta CRL
Same vendor: OpenSSL
- CVE-2026-31790
Incorrect Failure Handling in RSA KEM RSASVE Encapsulation - CVE-2026-31789
Heap Buffer Overflow in Hexadecimal Conversion - CVE-2026-28390
Possible NULL Dereference When Processing CMS KeyTransportRe - CVE-2026-28389
Possible NULL Dereference When Processing CMS KeyAgreeRecipi - CVE-2026-28388
NULL Pointer Dereference When Processing a Delta CRL
V. Comments for CVE-2022-4304
No comments yet